Include bandit as a community analyzer

Bandit is a popular Python SAST which now supports generating
reports in SARIF output. Would be nice to include as a community
analyzer here.

https://github.com/PyCQA/bandit

Signed-off-by: Eric Brown <eric_wade_brown@yahoo.com>

Author: ericwb

analyzers/bandit/.deepsource/analyzer/analyzer.toml

@@ -0,0 +1,7 @@
+# Analyzer Profile
+category = "sec"
+name = "A security linter from PyCQA"
+shortcode = "bandit"
+status = "active"
+tool_latest_version = "1.7.8"
+description = " Bandit is a tool designed to find common security issues in Python code."

analyzers/bandit/.deepsource/analyzer/example_config.toml

@@ -0,0 +1,5 @@
+version = 1
+
+[[analyzers]]
+name = "bandit"
+type = "community"

analyzers/bandit/.deepsource/analyzer/logo.svg

@@ -0,0 +1,12 @@
+title = "Error processing rule on the template"
+verbose_name = "E0002"
+severity = "major"
+category = "antipattern"
+weight = 70
+tags = ["base", "rule"]
+description = '''
+Errors found when processing a rule on the template
+
+### References:
+[CloudFormation Python Lint](https://github.com/aws-cloudformation/cfn-python-lint)
+'''

analyzers/bandit/.deepsource/analyzer/silencers.json

@@ -0,0 +1,12 @@
+title = "Basic cloudformation template configuration"
+verbose_name = "E1001"
+severity = "major"
+category = "antipattern"
+weight = 70
+tags = ["base"]
+description = '''
+Making sure the basic CloudFormation template components are properly configured
+
+### References:
+[CloudFormation Python Lint](https://github.com/aws-cloudformation/cfn-python-lint)
+'''

analyzers/bandit/.deepsource/issues/CFLIN-E0002.toml

@@ -0,0 +1,12 @@
+title = "Template size limit"
+verbose_name = "E1002"
+severity = "major"
+category = "antipattern"
+weight = 70
+tags = ["limits"]
+description = '''
+Check the size of the template is less than the upper limit
+
+### References:
+[CloudFormation Limits](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/cloudformation-limits.html)
+'''

analyzers/bandit/.deepsource/issues/CFLIN-E1001.toml

@@ -0,0 +1,12 @@
+title = "Template description limit"
+verbose_name = "E1003"
+severity = "major"
+category = "antipattern"
+weight = 70
+tags = ["description", "limits"]
+description = '''
+Check if the size of the template description is less than the upper limit
+
+### References:
+[CloudFormation Limits](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/cloudformation-limits.html)
+'''

analyzers/bandit/.deepsource/issues/CFLIN-E1002.toml

@@ -0,0 +1,12 @@
+title = "Template description can only be a string"
+verbose_name = "E1004"
+severity = "major"
+category = "antipattern"
+weight = 70
+tags = ["description"]
+description = '''
+Template description can only be a string
+
+### References:
+[Template Description Structure](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/template-description-structure.html)
+'''

analyzers/bandit/.deepsource/issues/CFLIN-E1003.toml

@@ -0,0 +1,12 @@
+title = "Getatt validation of parameters"
+verbose_name = "E1010"
+severity = "major"
+category = "antipattern"
+weight = 70
+tags = ["functions", "getatt"]
+description = '''
+Validates that GetAtt parameters are to valid resources and properties of those resources
+
+### References:
+[Intrinsic Function Reference Getatt](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/intrinsic-function-reference-getatt.html)
+'''